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2011  CyberSecurity  Watch  Survey  -1 


CSO  Magazine,  USSS,  CERT  & 
Deloitte 

607  respondents 


Percentage  of  Participants 
Who  Experienced  an  Insider 
Incident 


38%  of  organizations 
have  more  than  5000 
employees 

37%  of  organizations 
have  less  than 
500  employees 


Source:  2011  CyberSecuirty  Watch  Survey,  CSO  Magazine,  U.S.  Secret  Service,  Software  Engineering  Institute  CERT  Program  at  Carnegie  Mellon 
University  and  Deloitte,  January  2011. 
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2011  CyberSecurity  Watch  Survey  -2 


46  %  of  respondents 

Damage  caused  by  insider  attacks  more  damaging  than 
outsider  attacks 

Most  common  insider  e-crime 

Unauthorized  access  to  /  use  of  corporate  information 

(63%) 

Unintentional  exposure  of  private  or  sensitive  data 

(57%) 

Virus,  worms,  or  other  malicious  code 

(37%) 

Theft  of  intellectual  property 

(32%) 

Source:  2011  CyberSecuirty  Watch  Survey,  CSO  Magazine,  U.S.  Secret  Service,  Software  Engineering  Institute  CERT  Program  at  Carnegie  Mellon 
University  and  Deloitte,  January  2011. 


==-  Software  Engineering  Institute  Carnegie  Mellon 


4 


2011  CyberSecurity  Survey  Results  -1 


What  percent  of  the  Electronic  Crime  events  are  known  or  suspected  to 
have  been  caused  by : 


Source:  2011  CyberSecuirty  Watch  Survey,  CSO  Magazine,  U.S.  Secret  Service,  Software  Engineering  Institute  CERT  Program  at  Carnegie  Mellon 
University  and  Deloitte,  January  2011. 
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2011  CyberCrime  Survey  Results  -  2 


Which  Electronic  Crimes  were  more  costly  or  damaging  to  your  organization, 
those  perpetrated  by: 


Source:  2011  CyberSecuirty  Watch  Survey,  CSO  Magazine,  U.S.  Secret  Service,  Software  Engineering  Institute  CERT  Program  at  Carnegie  Mellon 
University  and  Deloitte,  January  2011. 
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2011  CyberCrime  Survey  Results  -  3 


How  Insider  Intrusions 
Are  Handled 


Internally  (without  legal  action  or  law 
enforcement) 

■  Internally  (with  legal  action) 

a  Externally  (notifying  law  enforcement) 

■  Externally  (filing  a  civil  action) 


Reason(s)  CyberCrimes  were  not 
referred  for  legal  action 

2011 

2010 

Damage  level  insufficient  to  warrant 
prosecution 

42% 

37% 

Could  not  identify  the  individual/  individuals 
responsible  for  committing  the  eCrime 

40% 

29% 

Lack  of  evidence/not  enough  information  to 
prosecute 

39% 

35% 

Concerns  about  negative  publicity 

12% 

15% 

Concerns  about  liability 

8% 

7% 

Concerns  that  competitors  would  use 
incident  to  their  advantage 

6% 

5% 

Prior  negative  response  from  law 
enforcement 

5% 

7% 

Unaware  that  we  could  report  these  crimes 

4% 

5% 

Other 

11% 

5% 

Don't  know 

20% 

14% 

Not  applicable 

N/A 

24% 

Source:  2011  CyberSecuirty  Watch  Survey,  CSO  Magazine,  U.S.  Secret  Service,  Software  Engineering  Institute  CERT  Program  at  Carnegie  Mellon 
University  and  Deloitte,  January  2011. 
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2011  CyberCrime  Survey  Results  -  4 


Percentage  of  insiders  versus  outsiders 
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Source:  2011  CyberSecuirty  Watch  Survey,  CSO  Magazine,  U.S.  Secret  Service,  Software  Engineering  Institute  CERT  Program  at  Carnegie  Mellon 
University  and  Deloitte,  January  2011. 
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